SCF Portal Stats

Members
  • Total Members: 14197
  • Latest: Levine
Stats
  • Total Posts: 43431
  • Total Topics: 16526
  • Online today: 2962
  • Online ever: 51419
  • (01. January 2010., 10:27:49)
Users Online
Users: 1
Guests: 2865
Total: 2866









Post reply

Name:
Email:
Subject:
Message icon:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image

Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.codekids.ba:

shortcuts: hit alt+s to submit/post or alt+p to preview


Topic Summary

Posted by: Samker
« on: 21. January 2009., 09:07:36 »



Trend Micro Advanced Threats Researcher Paul Ferguson has discovered fake websites with headlines like Barack Obama has refused to be a president and links that take the user to fake Obama sites which mimick the official Obama website.

Trend Micro has found binaries with file names like barack.exe and baracknews.exe which belong to Waladec family of worms that spread more after New Year as spam greeting cards. Below is a glimpse of the fake obama website



Some of the malware found are:

    * WORM_WALEDAC.KAX
    * WORM_WALEDAC.AE
    * WORM_WALEDAC.AG
    * WORM_WALEDAC.AD
    * WORM_WALEDAC.AL
    * WORM_WALEDAC.AH
    * TROJ_AGENT.DOZZ
    * TSPY_BANKER.BFE
    * TROJ_DLOADER.XGZ
    * BKDR_KRYPTIK.AB


These malware are mostly hosted on domains that contain Obama-related key words.

Spam emails are being circulated that contains links to fake Obama websites causing the download of WORM_WALEDAC.KAX which steals email addresses and sends the information to mulitple IP addresses. This worm also opens random ports in an affected system.



(Neowin)

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Kursevi programiranja za ucenike u Sarajevu

Terms of Use | Privacy Policy | Advertising
TinyPortal 2.3.1 © 2005-2023